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DETAILED ACTION 

1 . This Office Action is in response to Applicant's amendment filed on November 
23, 2005. Claims 1 and 44 have been amended. Claims 46-48 have been added. 
Claims 1-7, 9-29, 31-32, 35-38, 40-44 and 46-48 are pending. 



Response to Arguments 

2. Applicant contends that the key taught by Sims associated with content or a 
device but not a user program key associated with the user program. However, the 
secure package using the user program key as recited "containing a portion of the rights 
controlled data object". This rights controlled data object may be interpreted to be 
copyright control related information to the content data which Sims clearly taught (see 
Sims, col. 3, lines 31-45 and coL 15, lines 4-21, "the content use information preferably 
include rules establishing authorized uses of the content..."). Since the rights 
information is coupled with the content data, the limitation is met. 



Claim Rejections - 35 USC § 103 

i 

3. The following is^a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 
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Claims 1-7, 9-17, 19-29, 31, 32, 35-38, 40-44 and 46-48 are rejected under 35 
U.S.C. 103(a) as being unpatentable over Sims, III (U.S. Patent No. 6,550,011) in view 
of Abbott etal. (U.S. Patent No. 6,671,808, hereinafter Abbott). 

In respect to claim 1 , Sims discloses a user data processor for providing access 
to a rights controlled data object, the user data processor comprising: 

a processing device (col. 11, lines 5-15); 

a communication; device connected to the processing device and configured to 
receive an encrypted secure package containing a portion of the rights controlled data 
object (see col. 1, lines 13-29); 

a user program running on the processing device, the user program configured to 
control access to the rights controlled data object; a user program security module 
configured to at least partially decrypt the secure package using a user program key 
associated with the user program (see col. 9, lines 60-67); and 

a machine key device connected to and associated with the processing device 
and accessible by the user program, the machine key device configured to restrict the 
use of the data object to the user data processor using a machine key (see col, 15, lines 
18-34). 

Sims discloses it is additionally possible to uniquely encrypt the content per user 
so that if unauthorized copies are made available or a secret key is published the 
source might be identified (Sims, col. 9, lines 60-67). However, Sims does not explicitly 
disclose but Abbott discloses a user device associated with a user, the user key device 
detachably connected to the processing device, accessible by the user program and 
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configured to restrict the use of the data object to the user data processor using a 
machine key (see Abbott, col. 3, lines 25-63). It would have been obvious to one of 
ordinary skill in the art at the time the invention was made to incorporate the teaching of 
a user device associated with a user detachably connected to the processing device 
taught by Abbott with the teaching of additionally encrypting the content per user taught 
by Sims for the benefit of ensuring the identity of the user of the content (Abbott, col. 3, 
lines 45-49). 

In respect to claim 2, Sims and Abbott disclose the user data processor of Claim 

1, wherein the user program is configured to communicate with the machine key device 
to authenticate the identity of the processing device using the machine key (see Sims, 

col. 15, lines 18-34). I 

t 
I 

In respect to claim 3, Sims and Abbott disclose the user data processor of Claim 

f 

2, wherein the processing device is configured to provide rights controlled access to 
digital video (see Sims, col. 2, lines 1-3). 

In respect to claim 4, Sims and Abbott disclose the user data processor of Claim 
1, wherein the encrypfed secure package is encrypted with at least the user program 
key and the machine key, and wherein the machine key device is configured to at least 
partially decrypt the secure package using the machine key (see Sims, Col. 12, lines 
13-21). 

In respect to claim 5, Sims and Abbott disclose the user data processor of Claim 
4, wherein the user program is configured to communicate with the machine key device 
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to authenticate the identity of the processing device using the machine key (see Sims, 
Col. 5, lines 18-38). 

In respect to claim 6, Sims and Abbott disclose the user data processor of Claim 

5, wherein the machine key is an asymmetric machine key pair comprising a public 

I 

machine key and a private machine key (see Sims, Col. 12, lines 13-21). 

I 

In respect to claim 7, Sims and disclose the user data processor of Claim 6, 
wherein the machine key device is configured to generate the asymmetric machine key 
pair (see Sims, Col. 14, line 58-col. 15, line 3). 

In respect to claim 9, Sims and Abbott disclose the user data processor of Claim 
8, wherein the user program is configured to communicate with the machine key device 
to authenticate the identity of the processing device using the machine key, and 
wherein the user program is configured to communicate with the user key device to 
authenticate the identity of the user using the user key (see Sims, Col. 12, lines 13-21). 

In respect to claim 10, Sims and Abbott disclose the user data processor of 
Claim 8, wherein the encrypted secure package is encrypted with at least the user 
program key, the machine key, and the user key, wherein the machine key device is 
configured to at least partially decrypt the secure package using the machine key, and 
wherein the user key device is configured to at least partially decrypt the secure 
package using the user key (see Sims, col. 12, lines 13-21). 

In respect to claim 1 1 , Sims and disclose the user data processor of Claim 1 0, 
wherein the user program is configured to communicate with the machine key device to 
authenticate the identity of the processing device using the machine key, and wherein 
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the user program is configured to communicate with the user key device to authenticate 
the identity of the user using the user key (see Sims, Col. 12, lines 13-21). 

In respect to claim 12, Sims and Abbott disclose the user data processor of 
Claim 8, further comprising: 

a second security module configured to at least partially decrypt the secure 

package using a second key; and a third security module configured to at least partially 

I 

decrypt the secure package using a third key (see Sims, Col. 12, lines 13-21 and Col. 

20, lines 31-43). i 

If 

In respect to claim 13, Sims and Abbott disclose the user data processor of 

] 

Claim 12, wherein the second security module is configured to communicate with the 
user key device to authenticate the identity of the processing device using the user key, 
and wherein the third security module is configured to communicate with the machine 
key device to authenticate the identity of the processing device using the machine key 
(see Abbott, Col. 12, lines 13-21 and col. 20, lines 31-43). 

In respect to claim 14, Sims and Abbott disclose the user data processor of 
Claim 12, wherein the second key is a portion of the user key, wherein the second 
security module is configured to obtain the second key from the user key device, 
wherein the third key is a portion of the machine key, and wherein the third security 
module is configured to obtain the third key from the machine key device (see Sims, col. 
20,lines 31-43). 
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In respect to claim 15, Sims and Abbott disclose the user data processor of 
Claim 14, wherein the second security module and the third security module are parts of 
the user program (see Sims, col. 20, lines 31-43). 

In respect to claim 16, Sims and Abbott disclose the user data processor of 
Claim 1, further comprising a third security module configured to at least partially 
decrypt the secure package using a third key (see Sims, col. 12, lines 13-21). 

In respect to claim 17, Sims and Abbott disclose the user data processor of 
Claim 16, wherein the third security module is configured to communicate with the 
machine key device to authenticate the identity of the processing device using the 
machine key (see Sims, 12, lines 13-21). 

In respect to claim 19, Sims and Abbott disclose the user data processor of 
Claim 16, wherein the third key is a portion of the machine key, and wherein the third 
security module is configured to obtain the third key from the machine key device (see 
Sims, col. 12, lines 13-21 and col. 20, lines 31-43). 

In respect to claim 20, Sims and Abbott disclose the user data processor of 
Claim 1, wherein the third security module is a part of the user program (see Sims, col. 
20, lines 31-43). 

In respect to claim 21 , Sims and Abbott disclose the user data processor of 
Claim 1, wherein the user program is implemented in hardware (see Sims, col. 4, line 
63-col. 5, line 10). 
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In respect to claim 22, Sims and Abbott disclose the user data processor of 
Claim 1, wherein the user program security module is part of the user program (see 
Sims, col. 4, line 63-col. 5, line 10). 

In respect to claim 23, Sims and Abbott disclose the user data processor of 
Claim 1, wherein the processing device is a general purpose computer (see Sims, col. 
3, lines 30-46). 

In respect to claim 24, Sims and Abbott disclose the user data processor of 
Claim 1, wherein the processing device and the machine key device are contained in a 
single integrated circuit (see Sims, col. 12, lines 42-57). 

In respect to claim 27, Sims and Abbott disclose the method of claim 26, further 
comprising: 

(H) digitally signing the control elements such that the control elements can be 
authenticated; and (I) ti^ansmitting the digital signature of the controlled elements to the 
user data processor (sle Sims, col. 5, lines 39-59). 

In respect to claims 25-26 and 28-29, 31, 32, 35-38 and 40-44, the claim 
limitations are similar to claims 1-24 and 27. Therefore, claims 25-26 and 28-29, 31, 32, 
35-38 and 40-44 are rejected based on the similar rationale. 

In respect to claims 46 and 48, Sims and Abott disclose the user data processor 
of claim 1, wherein the user key device provides encryption and decryption functionality 
of the user; wherein the user key is used for decryption (see Sims, col. 16, lines 44-52). 
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In respect to claim 47, Sims and Abott disclose the user data processor of claim 
1 , wherein the machine key device provides encryption and decryption functionality for 
the user data processor (see Sims, col. 15, lines 32-44). 

4. Claim 18 is rejected under 35 U.S.C. 103(a) as being unpatentable over Sims 

i, 

(U.S. Patent No. 6,550,01 1) Abbott (U.S. Patent No. 6,671,808) and further in view of 
Keeler, Jr. et al. (U.S. Patent No. 6,502,130, hereinafter Keeler). 

In respect to claim 18, Sims and Abbott disclose the user data processor of 
Claim 17. Sims and Abbott do not disclose the MAC address of the user data processor 
is a key (see Keeler, cot. 4, lines 30-48). Therefore, it would have been obvious to one 
of ordinary skill in the art at the time the invention was made to implement Sims and 
Abbott's teaching of encrypting content with machine key and user key with Keeler's 
teaching of using MAC address of the network system as a key so that it can 
conveniently identify the source if unauthorized content is identified. 

I 

I Conclusion 

5. The prior art made of record and not relied upon is considered pertinent to 

applicant's disclosure. | 

\ 

-Utsumi et al. (EP 0773 490 A1) teach a security control system (or user 
program) for protecting data stored in a storage medium operates by checking 
identifiers assigned to each medium. 
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Applicant's amendment necessitated ttie new ground(s) of rejection presented in 
this Office action. Accordingly, THIS ACTION IS MADE FINAL. See MPEP 
§ 706.07(a). Applicant is reminded of the extension of time policy as set forth in 37 
CFR 1.136(a). 

A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within 

i 

TWO MONTHS of the mailing date of this final action and the advisory action is not 
mailed until after the e|d of the THREE-MONTH shortened statutory period, then the 

shortened statutory period will expire on the date the advisory action is mailed, and any 

I 

extension fee pursuanl to 37 CFR 1 .1 36(a) will be calculated from the mailing date of 
the advisory action. In no event, however, will the statutory period for reply expire later 
than SIX MONTHS from the date of this final action. 

Any inquiry concerning this communication or earlier communications from the 
examiner should be directed to Tongoc Tran whose telephone number is (571) 272- 
3843. The examiner can normally be reached on 8:30-5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Jacques Louis-Jacques can be reached on (571) 272-3962. The fax phone 
number for the organization where this application or proceeding is assigned is 571- 
273-8300. 
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Information regarding the status of an application may be obtained from the 
Patent Application Information Retrieval (PAIR) system. Status information for 
published applications may be obtained from either Private PAIR or Public PAIR. 
Status information for unpublished applications is available through Private PAIR only. 
For more information about the PAIR system, see http://pair-direct.uspto.gov. Should 
you have questions on access to the Private PAIR system, contact the Electronic 
Business Center (EBC) at 866-217-9197 (toll-free). If you would like assistance from a 
USPTO Customer Service Representative or access to the automated information 
system, call 800-786-9199 (IN USA OR CANADA) or 571-272-1000. 
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